How can SOC analysts use the cyber kill chain?
This blog was written by an independent guest blogger. Security Operation Centers (SOCs) offer a robust method of ensuring cybersecurity and safety within an organization....
FBI and MI5 Bosses Warn of “Massive” China Threat
Unprecedented joint press conference signals urgent need to act Read More
5 things security pros want from XDR platforms
According to new research from ESG and the Information Systems Security Association (ISSA) 58% of organizations are consolidating or considering consolidating the number of security...
xen-4.15.3-2.fc35
FEDORA-2022-2c9f8224f8 Packages in this update: xen-4.15.3-2.fc35 Update description: Linux disk/nic frontends data leaks [XSA-403, CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742] (#2104747) update to xen-4.15.3 x86: MMIO Stale...
USN-5505-1: Linux kernel vulnerabilities
Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could...
Ransom Lockbit 3.0 / Code Execution
Posted by malvuln on Jul 06 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/38745539b71cf201bb502437f891d799_B.txt Contact: malvuln13 () gmail com Media:...
Ransom Lockbit 3.0 / Local Unicode Buffer Overflow (SEH)
Posted by malvuln on Jul 06 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/38745539b71cf201bb502437f891d799.txt Contact: malvuln13 () gmail com Media:...
EQS Integrity Line: Multiple Vulnerabilities
Posted by Giovanni Pellerano on Jul 06 EQS Integrity Line: Multiple Vulnerabilities Name Multiple Vulnerabilities in EQS Integrity Line Systems Affected EQS Integrity Line through...
CVE-2022-30550: Privilege escalation possible in dovecot when similar master and non-master passdbs are used
Posted by Aki Tuomi via Fulldisclosure on Jul 06 Affected product: Dovecot IMAP Server Internal reference: DOV-5320 Vulnerability type: Improper Access Control (CWE-284) Vulnerable version:...